Slashdot Mirror

← Back to Stories (view on slashdot.org)

Chinese Security Site Under New Kind of Attack

Posted by kdawson on from the novel-twist dept.

SkiifGeek writes "The main site for the Chinese Internet Security Response Team (CISRT) has been serving up infrequent attacks against site visitors through the use of an injected IFRAME tag that attempts to download and install numerous pieces of malicious software. While the source of the attack has yet to be identified, suspicion is that it might be an ARP attack being hosted by the CISRT's hosting provider. Rather than a straight-up infection attempt against all site visitors (as was the case with the Bank of India hack), it is an interesting evolution to see intermittent attack attempts against site visitors."

2 of 73 comments (clear)

  1. FTFA... by bangenge · · Score: 1, Insightful

    We are very sorry that when sometimes visiting our some pages, malicious codes are inserted. We think it doesn't mean that our website has been compromised. It's maybe due to ARP attack. We have informed our webserver provider to help us check whether it's due to ARP attack or not.

    Ummmm... I think if malicious code is inserted into your site, it's been compromised.

    --
    . o O ( TwO hEaDs ArE mOrE tHaN oNe... )
  2. Re:Strange Choice of Target, eh? by WindBourne · · Score: 2, Insightful

    Unless of course, the security site is doing it iself. I would not be surprised if they are trying to inject into clients. More importantly, I would guess that it would not attack systems that come from other known security sites.

    --
    I prefer the "u" in honour as it seems to be missing these days.